Feeds

DDoSers bombard Military root server (and more)

Flooded for 12 hours

Protecting against web application threats using SSL

At least three DNS root servers, including one maintained by the US Department of Defense, were flooded with data for about 12 hours in an attack that was notable more for its audacity than any noticeable degradation of internet traffic.

The DOD's G server was among those sustaining the most damage, according to an analysis of the machine's unanswered queries. The L server, maintained by ICANN, and the WIDE Project's M server, located in multiple locations, were also hit in attacks that started a little after midnight GMT on Tuesday.

There were reports that F and I servers also faced increased traffic, but those attacks appeared to be short-lived. They appeared to affect certain top-level-domains, including .org.

SANS said it was aware of root server attacks but is still wading through data before issuing a report. It encouraged people with logs, or other information relating to the attacks to send it to SANS officials.

It was unclear where the attacks originated, since the perpetrators disguised the origination of the packet flood, according to the Associated Press. There was some speculation they may have come out of Korea.

There were few reports of widespread outages, which comes as little surprise since the group of 13 root servers, which is then broken up into dozens more smaller, geographically dispersed servers, were designed so that two-thirds can fail with no noticeable interruption. Whois and other services provided by ICANN were down for a time, according to a post on a discussion group.

Despite the inefficacy of the attack, federal authorities, especially those in the military, never take kindly to attacks on their infrastructure. We envision a lot of sleepless nights for government spooks until the perpetrators are caught. ®

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.